Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/3XTDmiZ7ND3kdyVvOCOTM3zIDp0.roa
File: 3XTDmiZ7ND3kdyVvOCOTM3zIDp0.roa (raw, json)
Hash identifier: erCu50ye4bDDr/KtN0TO+rXeaDlVOqTzM98X81T6H5Y=
Subject key identifier: DD:74:C3:9A:26:7B:34:3D:E4:77:25:6F:38:23:93:33:7C:C8:0E:9D
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 018CCA9932660AA099B52D6FCDB037DF1CEC
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/3XTDmiZ7ND3kdyVvOCOTM3zIDp0.roa
Signing time: Tue 02 Jan 2024 14:34:46 +0000
ROA not before: Tue 02 Jan 2024 14:34:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48147
IP address blocks: 87.107.100.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.mft
rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 01:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:99:32:66:0a:a0:99:b5:2d:6f:cd:b0:37:df:1c:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Jan 2 14:34:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dd74c39a267b343de477256f382393337cc80e9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:8a:40:36:bb:f9:4d:7e:31:c5:31:96:9f:4c:
a2:4a:a5:c5:e1:0c:a7:fd:bd:1e:27:57:00:d7:3f:
ac:af:0f:12:a2:a0:6f:ee:12:64:c3:9c:cb:c7:3a:
c3:3a:6f:55:bb:75:d7:c1:84:1d:00:8a:4e:c3:ae:
21:2a:87:1d:26:c0:42:71:6d:f3:bd:37:06:8f:38:
b2:c1:6a:33:34:9e:fc:56:b5:62:6e:a0:3b:40:14:
d6:f7:e7:e7:aa:b5:da:37:01:8e:0a:82:d5:36:13:
03:ce:a0:71:7d:d0:e4:2d:72:ee:ae:af:dc:c0:89:
3f:c2:90:08:af:aa:df:ae:a7:b8:8c:33:66:eb:50:
fa:3e:45:78:bd:47:55:c4:cf:af:a8:b0:0d:db:75:
06:69:b8:4c:92:bd:13:39:de:14:d7:03:82:ae:6c:
4f:56:3c:d6:a5:55:c7:10:49:5b:3c:85:de:d1:5d:
7a:8e:b4:89:96:97:52:75:99:59:d0:93:97:22:7d:
c5:50:7f:8d:b9:d4:38:af:5b:c6:de:aa:5d:96:bd:
f8:fe:d3:34:36:07:5c:2e:69:7c:ea:ae:53:f2:16:
e4:8e:72:f4:b2:b2:ef:b8:ef:e3:19:3e:21:1d:b4:
74:2e:90:6a:40:3f:24:73:9a:5c:16:84:de:35:7d:
9f:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:74:C3:9A:26:7B:34:3D:E4:77:25:6F:38:23:93:33:7C:C8:0E:9D
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/3XTDmiZ7ND3kdyVvOCOTM3zIDp0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.107.100.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:57:e6:78:dc:1b:7b:6d:d5:dc:a6:23:6c:1c:01:69:51:54:
60:db:f4:fd:a8:c7:e0:5d:fa:14:87:77:ce:ea:7e:79:af:79:
f6:f3:91:d3:2a:5f:8f:aa:0d:73:c5:31:d4:bc:00:32:35:be:
50:1c:8c:56:1c:6d:7a:22:2c:bb:27:91:f2:6f:7d:f9:7c:ef:
90:1b:5d:b1:d3:28:14:ba:66:ba:87:7b:31:5e:ff:0b:8c:38:
3f:60:a2:72:5c:fd:51:a3:fc:32:87:f3:71:ea:09:86:a1:65:
52:c3:fc:d7:50:71:9c:d0:85:83:66:37:35:fd:13:ca:8e:74:
33:0e:8c:ee:0c:e0:78:e1:e3:90:6d:e0:29:6b:7e:ef:e9:08:
ca:d9:b7:66:63:91:21:ea:3a:93:bf:f0:77:e3:2a:a4:94:9c:
38:c4:f2:bc:cc:2f:61:24:43:99:ad:0e:0e:e3:30:42:69:37:
04:4e:ec:48:56:8f:4b:d3:ea:d8:ae:80:e5:18:62:88:9c:69:
f6:c0:40:77:56:65:36:22:14:92:80:39:0b:dc:70:bd:c8:20:
31:e8:9b:e7:96:64:68:c5:4b:ce:1c:37:d7:3e:7f:19:fc:6f:
a4:f2:69:b1:fe:05:78:48:59:4d:50:83:85:f0:69:2b:25:aa:
c0:b4:e4:fb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzKmTJmCqCZtS1vzbA33xzsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwNzc1ZDk0NzFiODVkOTYzZmVmNmQyODM1OTBlMmQ5NDJk
ZDVjMjEwHhcNMjQwMTAyMTQzNDQ2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZDc0YzM5YTI2N2IzNDNkZTQ3NzI1NmYzODIzOTMzMzdjYzgwZTlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqIpANrv5TX4xxTGWn0yiSqXF4Qyn
/b0eJ1cA1z+srw8SoqBv7hJkw5zLxzrDOm9Vu3XXwYQdAIpOw64hKocdJsBCcW3z
vTcGjziywWozNJ78VrVibqA7QBTW9+fnqrXaNwGOCoLVNhMDzqBxfdDkLXLurq/c
wIk/wpAIr6rfrqe4jDNm61D6PkV4vUdVxM+vqLAN23UGabhMkr0TOd4U1wOCrmxP
VjzWpVXHEElbPIXe0V16jrSJlpdSdZlZ0JOXIn3FUH+NudQ4r1vG3qpdlr34/tM0
NgdcLml86q5T8hbkjnL0srLvuO/jGT4hHbR0LpBqQD8kc5pcFoTeNX2fOwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN10w5omezQ95HclbzgjkzN8yA6dMB8GA1UdIwQY
MBaAFAB3XZRxuF2WP+9tKDWQ4tlC3VwhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQt
NzZiMzNlNGNlODIxLzEvM1hURG1pWjdORDNrZHlWdk9DT1RNM3pJRHAwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQtNzZiMzNlNGNlODIx
LzEvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAV2tkMA0G
CSqGSIb3DQEBCwUAA4IBAQCtV+Z43Bt7bdXcpiNsHAFpUVRg2/T9qMfgXfoUh3fO
6n55r3n285HTKl+Pqg1zxTHUvAAyNb5QHIxWHG16Iiy7J5Hyb335fO+QG12x0ygU
uma6h3sxXv8LjDg/YKJyXP1Ro/wyh/Nx6gmGoWVSw/zXUHGc0IWDZjc1/RPKjnQz
DozuDOB44eOQbeApa37v6QjK2bdmY5Eh6jqTv/B34yqklJw4xPK8zC9hJEOZrQ4O
4zBCaTcETuxIVo9L0+rYroDlGGKInGn2wEB3VmU2IhSSgDkL3HC9yCAx6JvnlmRo
xUvOHDfXPn8Z/G+k8mmx/gV4SFlNUIOF8GkrJarAtOT7
-----END CERTIFICATE-----
Generated at Fri May 17 09:47:54 2024 by rpki-client on console-ams.rpki-client.org